EvilZone

Hacking and Security => Hacking and Security => : worf2910 August 29, 2011, 02:29:52 PM

: phpmybibli (PMB) Version 3.4.8
: worf2910 August 29, 2011, 02:29:52 PM

Hi all.

Just a question.
Im using phpmybibli(PMB) a library system Version 3.4.8
I've read in the web that before this version the program was vulnerable to SQL injection.
Is this version still vulnerable or it is secure?

Thank a lot for an answer
Cheers
Worf2901

: Re: phpmybibli (PMB) Version 3.4.8
: xor August 29, 2011, 02:59:13 PM

Generally if a version is vulnerable, it will remain vulnerable until updated, and generally the version number will change when that happens.

I see you've also asked this question on several hacker / security forums. Have you tried searching for the vulnerability yourself, where did you hear about it?

The only reported vulnerabilities I could find were in older versions and none of them were SQLi, but that doesn't necessarily mean that this version is not vulnerable.

: Re: phpmybibli (PMB) Version 3.4.8
: worf2910 September 02, 2011, 04:59:50 AM

Yes, i've also asked this question on other hacker/security forum because I'm really worried about the vulnerability of this program. I've heard about it on several web sites. I dont know nothing about SQLi but the web sites I've visited reported a SQLi vulnerability.
Thx for the answer